{"id":17105,"date":"2019-12-05T09:10:11","date_gmt":"2019-12-05T17:10:11","guid":{"rendered":"https:\/\/www.palada.net\/index.php\/2019\/12\/05\/news-10841\/"},"modified":"2019-12-05T09:10:11","modified_gmt":"2019-12-05T17:10:11","slug":"news-10841","status":"publish","type":"post","link":"http:\/\/www.palada.net\/index.php\/2019\/12\/05\/news-10841\/","title":{"rendered":"Report: Organizations remain vulnerable to increasing insider threats"},"content":{"rendered":"<p><strong>Credit to Author: Jovi Umawing| Date: Thu, 05 Dec 2019 16:00:00 +0000<\/strong><\/p>\n<p>The <a rel=\"noreferrer noopener\" aria-label=\"latest data breach at Capital One (opens in a new tab)\" href=\"https:\/\/techcrunch.com\/2019\/07\/29\/capital-one-hacked-over-100-million-customers-affected\/\" target=\"_blank\">latest data breach at Capital One<\/a> is a noteworthy incident not because it affected over 100 million customer records, 140,000 Social Security numbers (SSNs), and 80,000 linked bank accounts. Nor was it special because the hack was the result of a vulnerable firewall misconfiguration. <\/p>\n<p>Many still talk about this breach because a leak of this magnitude, which we&#8217;ve historically seen conducted by nation-state actors, was made possible by a single skilled insider: Paige A. Thompson. Thompson set a benchmark for single insider threat attacks against the banking industry\u2014and we can expect that benchmark to be cleared. <\/p>\n<p>On a more chilling note, criminal enterprises&nbsp;<a rel=\"noreferrer noopener\" aria-label=\" (opens in a new tab)\" href=\"https:\/\/www.cnbc.com\/2018\/09\/20\/amazon-not-only-company-facing-insider-threats-china-russia.html\" target=\"_blank\">already have a market<\/a> opened for corporate employees willing to trade proprietary secrets for cash as a form of \u201cside job.\u201d A number of these underground organizations, unsurprisingly, hail from countries outside the United States, such as Russia and China. Unfortunately for US organizations, these criminal enterprises pay really well.<\/p>\n<p>Recently, Cybersecurity Insiders\u2014in partnership with Gurucul, a behavior, identity, fraud, and cloud security analytics company\u2014released results of\u00a0<a rel=\"noreferrer noopener\" aria-label=\" (opens in a new tab)\" href=\"https:\/\/gurucul.com\/2020-insider-threat-survey-report\" target=\"_blank\">its research on insider threats<\/a>, revealing the latest trends, organizational challenges, and methodologies on how IT professionals prepare for and deal with this danger. Here are some of their key findings:<\/p>\n<ul>\n<li>More than half of organizations surveyed (58 percent) said that they are not effective at monitoring, detecting, and responding to insider threats.<\/li>\n<li>63 percent of organizations think that privileged IT users pose the biggest security risk. This is followed by regular employees (51 percent), contractors\/service providers\/temporary workers (50 percent), and other privileged users, such as executives (50 percent).<\/li>\n<li>68 percent of organizations feel that they are moderately to extremely vulnerable to insider threats.<\/li>\n<li>52 percent of organizations confirm that it is more difficult for them to detect and prevent insider threats than detecting and preventing external cyberattacks.<\/li>\n<li>68 percent of organizations have observed that insider threats have become more frequent in the past 12 months.<\/li>\n<\/ul>\n<p>The report also states reasons why organizations are increasingly having difficulty detecting and preventing insider threats, which include the increased use of applications and\/or tools that leak data, an increased amount of data that leaves the business environment\/perimeter, and the misuse of credential or access privileges.<\/p>\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter\"><img decoding=\"async\" data-attachment-id=\"41046\" data-permalink=\"https:\/\/blog.malwarebytes.com\/awareness\/2019\/12\/report-organizations-remain-vulnerable-to-increasing-insider-threats\/attachment\/reasons-for-difficulty-gurucul\/\" data-orig-file=\"https:\/\/blog.malwarebytes.com\/wp-content\/uploads\/2019\/11\/reasons-for-difficulty-gurucul.png\" data-orig-size=\"859,765\" data-comments-opened=\"1\" data-image-meta=\"{&quot;aperture&quot;:&quot;0&quot;,&quot;credit&quot;:&quot;&quot;,&quot;camera&quot;:&quot;&quot;,&quot;caption&quot;:&quot;&quot;,&quot;created_timestamp&quot;:&quot;0&quot;,&quot;copyright&quot;:&quot;&quot;,&quot;focal_length&quot;:&quot;0&quot;,&quot;iso&quot;:&quot;0&quot;,&quot;shutter_speed&quot;:&quot;0&quot;,&quot;title&quot;:&quot;&quot;,&quot;orientation&quot;:&quot;0&quot;}\" data-image-title=\"reasons-for-difficulty-gurucul\" data-image-description=\"\" data-medium-file=\"https:\/\/blog.malwarebytes.com\/wp-content\/uploads\/2019\/11\/reasons-for-difficulty-gurucul-300x267.png\" data-large-file=\"https:\/\/blog.malwarebytes.com\/wp-content\/uploads\/2019\/11\/reasons-for-difficulty-gurucul-600x534.png\" src=\"https:\/\/blog.malwarebytes.com\/wp-content\/uploads\/2019\/11\/reasons-for-difficulty-gurucul-600x534.png\" alt=\"\" class=\"wp-image-41046\" srcset=\"https:\/\/blog.malwarebytes.com\/wp-content\/uploads\/2019\/11\/reasons-for-difficulty-gurucul-600x534.png 600w, https:\/\/blog.malwarebytes.com\/wp-content\/uploads\/2019\/11\/reasons-for-difficulty-gurucul-300x267.png 300w, https:\/\/blog.malwarebytes.com\/wp-content\/uploads\/2019\/11\/reasons-for-difficulty-gurucul.png 859w\" sizes=\"(max-width: 600px) 100vw, 600px\" \/><figcaption>The possible reasons for difficulty in detecting and preventing insider threats (Courtesy of Cybersecurity Insiders)<\/figcaption><\/figure>\n<\/div>\n<p>The&nbsp;<a rel=\"noreferrer noopener\" aria-label=\" (opens in a new tab)\" href=\"https:\/\/resources.sei.cmu.edu\/library\/asset-view.cfm?assetid=91513\" target=\"_blank\">CERT Insider Threat Center<\/a>, part of the CERT Division at Carnegie Mellon\u2019s Software Engineering Institute (SEI) that specializes in insider threats, has recently put forth a blog series that ran from October 2018 to August 2019 on the patterns and trends of insider threats. These posts contained breakdowns and analyses of what insider threats look like across certain industry sectors, statistics, and motivations behind insider incidents\u2014and they\u2019re quite different.<\/p>\n<p>Below are a few high-level takeaways from these posts:<\/p>\n<ul>\n<li>The CERT Insider Threat Center has identified the top three crimes insiders commit across industries: fraud, intellectual property theft, and IT systems sabotage.<\/li>\n<li>Fraud is the most common insider threat incident recorded in the\u00a0<a rel=\"noreferrer noopener\" aria-label=\" (opens in a new tab)\" href=\"https:\/\/insights.sei.cmu.edu\/insider-threat\/2018\/11\/insider-threats-in-the-federal-government-part-3-of-9-insider-threats-across-industry-sectors.html\" target=\"_blank\">federal government<\/a>\u00a0(60.8 percent),\u00a0<a rel=\"noreferrer noopener\" aria-label=\" (opens in a new tab)\" href=\"https:\/\/insights.sei.cmu.edu\/insider-threat\/2018\/12\/insider-threats-in-finance-and-insurance-part-4-of-9-insider-threats-across-industry-sectors.html\" target=\"_blank\">finance and insurance<\/a>\u00a0(87.8 percent),\u00a0<a rel=\"noreferrer noopener\" aria-label=\" (opens in a new tab)\" href=\"https:\/\/insights.sei.cmu.edu\/insider-threat\/2019\/01\/insider-threats-in-state-and-local-government-part-5-of-9-insider-threats-across-industry-sectors.html\" target=\"_blank\">state and local governments<\/a>\u00a0(77 percent),\u00a0<a rel=\"noreferrer noopener\" aria-label=\" (opens in a new tab)\" href=\"https:\/\/insights.sei.cmu.edu\/insider-threat\/2019\/02\/insider-threats-in-healthcare-part-7-of-9-insider-threats-across-industry-sectors.html\" target=\"_blank\">healthcare<\/a>\u00a0(76 percent), and the\u00a0<a rel=\"noreferrer noopener\" aria-label=\" (opens in a new tab)\" href=\"https:\/\/insights.sei.cmu.edu\/insider-threat\/2019\/03\/insider-threats-in-entertainment-part-8-of-9-insider-threats-across-industry-sectors.html\" target=\"_blank\">entertainment<\/a> (61.5 percent) industries.<\/li>\n<li>All sectors consistently experienced an insider incident perpetrated by <a rel=\"noreferrer noopener\" aria-label=\" (opens in a new tab)\" href=\"https:\/\/insights.sei.cmu.edu\/insider-threat\/2019\/08\/patterns-and-trends-in-insider-threats-across-industry-sectors-part-9-of-9-insider-threats-across-in.html\" target=\"_blank\">trusted business partners<\/a>. Typically, it ranges between 15 to 25 percent across all insider incident types and sectors. This should be an eye-opening statistic, especially for SMBs, as <a rel=\"noreferrer noopener\" aria-label=\" (opens in a new tab)\" href=\"https:\/\/www.prnewswire.com\/news-releases\/new-paychex-data-shows-independent-contractor-growth-outpaces-employee-hiring-in-small-businesses-300775712.html\" target=\"_blank\">research suggests<\/a> that they partner more with other businesses over hiring employees.<\/li>\n<\/ul>\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter\"><img decoding=\"async\" data-attachment-id=\"41047\" data-permalink=\"https:\/\/blog.malwarebytes.com\/awareness\/2019\/12\/report-organizations-remain-vulnerable-to-increasing-insider-threats\/attachment\/insider-threat-scope-carnegie-mellon\/\" data-orig-file=\"https:\/\/blog.malwarebytes.com\/wp-content\/uploads\/2019\/11\/insider-threat-scope-carnegie-mellon.png\" data-orig-size=\"1314,607\" data-comments-opened=\"1\" data-image-meta=\"{&quot;aperture&quot;:&quot;0&quot;,&quot;credit&quot;:&quot;&quot;,&quot;camera&quot;:&quot;&quot;,&quot;caption&quot;:&quot;&quot;,&quot;created_timestamp&quot;:&quot;0&quot;,&quot;copyright&quot;:&quot;&quot;,&quot;focal_length&quot;:&quot;0&quot;,&quot;iso&quot;:&quot;0&quot;,&quot;shutter_speed&quot;:&quot;0&quot;,&quot;title&quot;:&quot;&quot;,&quot;orientation&quot;:&quot;0&quot;}\" data-image-title=\"insider-threat-scope-carnegie-mellon\" data-image-description=\"\" data-medium-file=\"https:\/\/blog.malwarebytes.com\/wp-content\/uploads\/2019\/11\/insider-threat-scope-carnegie-mellon-300x139.png\" data-large-file=\"https:\/\/blog.malwarebytes.com\/wp-content\/uploads\/2019\/11\/insider-threat-scope-carnegie-mellon-600x277.png\" src=\"https:\/\/blog.malwarebytes.com\/wp-content\/uploads\/2019\/11\/insider-threat-scope-carnegie-mellon-600x277.png\" alt=\"\" class=\"wp-image-41047\" srcset=\"https:\/\/blog.malwarebytes.com\/wp-content\/uploads\/2019\/11\/insider-threat-scope-carnegie-mellon-600x277.png 600w, https:\/\/blog.malwarebytes.com\/wp-content\/uploads\/2019\/11\/insider-threat-scope-carnegie-mellon-300x139.png 300w, https:\/\/blog.malwarebytes.com\/wp-content\/uploads\/2019\/11\/insider-threat-scope-carnegie-mellon.png 1314w\" sizes=\"(max-width: 600px) 100vw, 600px\" \/><figcaption>Scope of the insider threat problem (Courtesy of the Carnegie Mellon University Software Engineering Institute)<\/figcaption><\/figure>\n<\/div>\n<h3>Insider threats on the spotlight\u2014<em>finally!<\/em><\/h3>\n<p>The National Counterintelligence and Security Center (NCSC) and the National Insider Threat Task Force (NITTF), together with the Federal Bureau of Investigation, the Office of the Under Secretary of Defense (Intelligence), the Department of Homeland Security, and the Defense Counterintelligence and Security Agency&nbsp;<a href=\"https:\/\/www.dni.gov\/index.php\/ncsc-how-we-work\/ncsc-nittf\">declared<\/a>&nbsp;September as&nbsp;<strong>National Insider Threat Awareness Month<\/strong>, and it launched this year.<\/p>\n<p>The goal of the annual campaign is to educate employees about insider threats and to maximize the reporting of abnormal employee behavior before things escalate to an insider incident.<\/p>\n<p>&#8220;All organizations are vulnerable to insider threats from employees who may use their authorized access to facilities, personnel or information to harm their organizations\u2014intentionally or unintentionally,&#8221; says NCSC Director William Evanina in a <a rel=\"noreferrer noopener\" aria-label=\"press release (opens in a new tab)\" href=\"https:\/\/www.dni.gov\/files\/NCSC\/documents\/nittf\/Updated_250pm_20190903Press-Release-National-Insider-Threat-Awar-Month.pdf\" target=\"_blank\">press release<\/a> [PDF], &#8220;The harm can range from negligence, such as failing to secure data or clicking on a spear-phishing link, to malicious activities like theft, sabotage, espionage, unauthorized disclosure of classified information or even violence.&#8221;<\/p>\n<p>We have tackled <a rel=\"noreferrer noopener\" aria-label=\"insider threats (opens in a new tab)\" href=\"https:\/\/blog.malwarebytes.com\/security-world\/2017\/09\/insider-threats-in-your-work-inbox\/\" target=\"_blank\">insider threats<\/a> at length on several occasions on the Malwarebytes Labs blog. Now is always the right time for organizations to give this cybersecurity threat some serious thought and plan on how they can combat it. After all, if businesses are only concerned about attacks from the outside, at some point they&#8217;ll be hit with attacks from the inside. The good news is organizations won\u2019t have to wait for next September to start dealing with this problem today.<\/p>\n<p>The CERT Insider Threat Center offers a list of\u00a0<a rel=\"noreferrer noopener\" aria-label=\" (opens in a new tab)\" href=\"https:\/\/resources.sei.cmu.edu\/library\/asset-view.cfm?assetid=540644\" target=\"_blank\">common-sense recommendations for mitigating insider threats<\/a>\u00a0that every cybersecurity, managerial, legal, and human resource personnel should have on hand. The Center also showcases\u00a0<a rel=\"noreferrer noopener\" aria-label=\" (opens in a new tab)\" href=\"https:\/\/insights.sei.cmu.edu\/insider-threat\/2019\/09\/september-is-national-insider-threat-awareness-month.html\" target=\"_blank\">a trove of publications<\/a>\u00a0if organizations would like to go deeper.<\/p>\n<p>We\u2019d also like to add\u00a0<a rel=\"noreferrer noopener\" aria-label=\" (opens in a new tab)\" href=\"https:\/\/blog.malwarebytes.com\/101\/2018\/08\/the-enemy-is-us-a-look-at-insider-threats\/\" target=\"_blank\">our own blog on the various types of insiders<\/a> your organization may encounter and certain steps you can take to nipping insider risks in the bud. We also paid closer attention to <a rel=\"noreferrer noopener\" aria-label=\" (opens in a new tab)\" href=\"https:\/\/blog.malwarebytes.com\/101\/2018\/10\/workplace-violence-the-forgotten-insider-threat\/\" target=\"_blank\">workplace violence<\/a>, a type of insider threat that is often forgotten.<\/p>\n<p>Stay safe! And remember: When you see something, say something.<\/p>\n<p>The post <a rel=\"nofollow\" href=\"https:\/\/blog.malwarebytes.com\/awareness\/2019\/12\/report-organizations-remain-vulnerable-to-increasing-insider-threats\/\">Report: Organizations remain vulnerable to increasing insider threats<\/a> appeared first on <a rel=\"nofollow\" href=\"https:\/\/blog.malwarebytes.com\">Malwarebytes Labs<\/a>.<\/p>\n<p><a href=\"https:\/\/blog.malwarebytes.com\/awareness\/2019\/12\/report-organizations-remain-vulnerable-to-increasing-insider-threats\/\" target=\"bwo\" >https:\/\/blog.malwarebytes.com\/feed\/<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p><strong>Credit to Author: Jovi Umawing| Date: Thu, 05 Dec 2019 16:00:00 +0000<\/strong><\/p>\n<table cellpadding='10'>\n<tr>\n<td valign='top' align='center'><a href='https:\/\/blog.malwarebytes.com\/awareness\/2019\/12\/report-organizations-remain-vulnerable-to-increasing-insider-threats\/' title='Report: Organizations remain vulnerable to increasing insider threats'><img src='https:\/\/blog.malwarebytes.com\/wp-content\/uploads\/2019\/11\/shutterstock_1455649106.jpg' border='0'  width='300px'  \/><\/a><\/td>\n<\/tr>\n<tr>\n<td valign='top' align='left'>The risk and challenges insider threats pose to organizations are ever present, even before tech as we know it existed. The age of digitization only made it higher and far-reaching. How has insider threats evolved over time? Where are we now in terms of mitigating insider threat risk? Are businesses really doing something about it? We answer such questions\u2014and more\u2014in this post.<\/p>\n<p>Categories: <\/p>\n<ul class=\"post-categories\">\n<li><a href=\"https:\/\/blog.malwarebytes.com\/category\/awareness\/\" rel=\"category tag\">Awareness<\/a><\/li>\n<\/ul>\n<p>Tags: <a href=\"https:\/\/blog.malwarebytes.com\/tag\/carnegie-mellon-university\/\" rel=\"tag\">Carnegie Mellon University<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/cert-insider-threat-center\/\" rel=\"tag\">cert insider threat center<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/cybersecurity-insiders\/\" rel=\"tag\">Cybersecurity Insiders<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/defense-counterintelligence-and-security-agency\/\" rel=\"tag\">Defense Counterintelligence and Security Agency<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/department-of-homeland-security\/\" rel=\"tag\">Department of Homeland Security<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/espionage\/\" rel=\"tag\">espionage<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/fraud\/\" rel=\"tag\">fraud<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/gurucul\/\" rel=\"tag\">Gurucul<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/insider-threats\/\" rel=\"tag\">insider threats<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/malicious-insider\/\" rel=\"tag\">malicious insider<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/mitigate-insider-threats\/\" rel=\"tag\">mitigate insider threats<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/national-counterintelligence-and-security-center\/\" rel=\"tag\">National Counterintelligence and Security Center<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/national-insider-threat-awareness-month\/\" rel=\"tag\">national insider threat awareness month<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/national-insider-threat-task-force\/\" rel=\"tag\">National Insider Threat Task Force<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/ncsc\/\" rel=\"tag\">NCSC<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/nittf\/\" rel=\"tag\">NITTF<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/office-of-the-under-secretary-of-defense\/\" rel=\"tag\">Office of the Under Secretary of Defense<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/paige-a-thompson\/\" rel=\"tag\">Paige A. Thompson<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/scope-of-insider-threat\/\" rel=\"tag\">scope of insider threat<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/sei\/\" rel=\"tag\">SEI<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/software-engineering-institute\/\" rel=\"tag\">Software Engineering Institute<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/types-of-insiders\/\" rel=\"tag\">types of insiders<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/william-evanina\/\" rel=\"tag\">William Evanina<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/workplace-violence\/\" rel=\"tag\">workplace violence<\/a><\/p>\n<table width='100%'>\n<tr>\n<td align=right>\n<p><b>(<a href='https:\/\/blog.malwarebytes.com\/awareness\/2019\/12\/report-organizations-remain-vulnerable-to-increasing-insider-threats\/' title='Report: Organizations remain vulnerable to increasing insider threats'>Read more&#8230;<\/a>)<\/b><\/p>\n<\/td>\n<\/tr>\n<\/table>\n<\/td>\n<\/tr>\n<\/table>\n<p>The post <a rel=\"nofollow\" href=\"https:\/\/blog.malwarebytes.com\/awareness\/2019\/12\/report-organizations-remain-vulnerable-to-increasing-insider-threats\/\">Report: Organizations remain vulnerable to increasing insider threats<\/a> appeared first on <a rel=\"nofollow\" href=\"https:\/\/blog.malwarebytes.com\">Malwarebytes Labs<\/a>.<\/p>\n","protected":false},"author":4,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"colormag_page_container_layout":"default_layout","colormag_page_sidebar_layout":"default_layout","footnotes":""},"categories":[10488,10378],"tags":[15496,15393,19257,23629,23630,6628,6261,9751,23631,14348,19260,23632,23633,23634,23635,23135,23636,23637,22509,23638,23639,23640,23641,23642,19264],"class_list":["post-17105","post","type-post","status-publish","format-standard","hentry","category-malwarebytes","category-security","tag-awareness","tag-carnegie-mellon-university","tag-cert-insider-threat-center","tag-cybersecurity-insiders","tag-defense-counterintelligence-and-security-agency","tag-department-of-homeland-security","tag-espionage","tag-fraud","tag-gurucul","tag-insider-threats","tag-malicious-insider","tag-mitigate-insider-threats","tag-national-counterintelligence-and-security-center","tag-national-insider-threat-awareness-month","tag-national-insider-threat-task-force","tag-ncsc","tag-nittf","tag-office-of-the-under-secretary-of-defense","tag-paige-a-thompson","tag-scope-of-insider-threat","tag-sei","tag-software-engineering-institute","tag-types-of-insiders","tag-william-evanina","tag-workplace-violence"],"_links":{"self":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/17105","targetHints":{"allow":["GET"]}}],"collection":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/comments?post=17105"}],"version-history":[{"count":0,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/17105\/revisions"}],"wp:attachment":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/media?parent=17105"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/categories?post=17105"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/tags?post=17105"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}